[Blackweb] (http://www.maravento.com/p/blacklistweb.html)
[Blackweb] (http://www.maravento.com/p/blacklistweb.html) es un proyecto que pretende recopilar la mayor cantidad de listas negras públicas de dominios (para bloquear porno, descargas, drogas, malware, spyware, trackers, bots, redes sociales, warez, venta de armas, etc), con el objeto de unificarlas y hacerlas compatibles con [Squid-Cache] (http://www.squid-cache.org/) (Tested in v3.5.x). Para lograrlo, realizamos una depuración de urls, para evitar duplicados, dominios inválidos (validación de ccTLD, ccSLD, sTLD, uTLD, gSLD, gTLD, etc), y realizamos un filtrado con listas blancas de dominios (falsos positivos, como google, hotmail, yahoo, etc), y obtener una mega ACL, optimizada para [Squid-Cache] (http://www.squid-cache.org/), libre de "overlapping domains" (e.g: "ERROR: '.sub.example.com' is a subdomain of '.example.com'").
[Blackweb] (http://www.maravento.com/p/blacklistweb.html) is a project that aims to collect as many public domain blacklists (to block porn, downloads, drugs, malware, spyware, trackers, Bots, social networks, warez, arms sales, etc.), in order to unify them and make them compatible with [Squid-Cache] (http://www.squid-cache.org/) (Tested in v3.5.x ). To do this, we perform a debugging of urls, to avoid duplicates, invalid domains (validation, ccTLD, ccSLD, sTLD, uTLD, gSLD, gTLD, etc), and filter with white lists of domains (false positives such as google , hotmail, yahoo, etc.), and get a mega ACL, optimized for [Squid-Cache] (http://www.squid-cache.org/), free of overlapping domains (eg: "ERROR: '.sub.example.com' is a subdomain of '.example.com'").
File | BL Domains |
---|---|
blackweb.txt | 5.019.565 |
git squid bash tar zip wget
La ACL blackweb.txt ya viene optimizada para Squid, por tanto puede descargar solamente el archivo blackweb.tar.gz, descomprimirlo y ubicar la ACL en el directorio de su preferencia y activar la regla de Squid para su uso / The ACL blackweb.txt is already optimized for Squid, so you can download only the file blackweb.tar.gz, unzip it and locate the ACL in the directory of your preference and activate the Squid rule for your use
route=/folder_store_blackweb (e.g: /etc/acl)
wget https://github.com/maravento/blackweb/raw/master/blackweb.tar.gz
if [ ! -d $route ]; then mkdir -p $route; fi
tar -C $route -xvzf blackweb.tar.gz
También puede descargar el proyecto Blackweb y actualizar la ACL blackweb.txt en dependencia de sus necesidades / You can also download the Blackweb project and update the blackweb.txt ACL depending on your needs
git clone https://github.com/maravento/blackweb.git
Copie el script y ejecútelo / Copy the script and run:
sudo cp -f blackweb/blackweb.sh /etc/init.d
sudo chown root:root /etc/init.d/blackweb.sh
sudo chmod +x /etc/init.d/blackweb.sh
sudo /etc/init.d/blackweb.sh
Cron task:
sudo crontab -e
@weekly /etc/init.d/blackweb.sh
Verifique su ejecución / Check execution: /var/log/syslog.log:
Blackweb for Squid: 28/09/2016 15:47:14
Descarga incompleta / Incomplete download:
Blackweb for Squid: Abort 14/06/2016 16:35:38 Check Internet Connection
Edit /etc/squid3/squid.conf - /etc/squid/squid.conf:
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
acl blackweb dstdomain -i "/etc/acl/blackweb.txt"
http_access deny blackweb
Blackweb contiene millones de dominios bloqueados, por tanto, editarla manualmente puede ser frustrante. Entonces, si detecta un falso positivo, utilice la ACL "whitedomains" y reporte el incidente, para corregirlo en la próxima actualización. Lo mismo aplica para dominios no incluidos en Blackweb, que quiera bloquear, puede incluirlos en "blackdomains" / Blackweb contains million domains blocked therefore manually editing can be frustrating. Then, if it detects a false positive, use the ACL "whitedomains" and report the incident to correct it in the next update. The same applies for domains not included in Blackweb, you want to block, you can include them in "blackdomains"
acl whitedomains dstdomain -i "/etc/acl/whitedomains.txt"
acl blackdomains dstdomain -i "/etc/acl/blackdomains.txt"
acl blackweb dstdomain -i "/etc/acl/blackweb.txt"
http_access allow whitedomains
http_access deny blackdomains
http_access deny blackweb
- "Blackdomains" incluye por default algunos dominios no incluidos en Blackweb (e.g. .youtube.com .googlevideo.com, .ytimg.com) y "whitedomains" incluye el subdominio accounts.youtube.com [desde Feb 2014, Google utiliza el subdominio accounts.youtube.com para autenticar sus servicios] (http://wiki.squid-cache.org/ConfigExamples/Streams/YouTube) / "Blackdomains" by default includes some domains not included in Blackweb (eg .youtube.com .googlevideo.com, .ytimg.com) and "whitedomains" includes the subdomain accounts.youtube.com [since February 2014, Google uses the accounts subdomain .youtube.com to authenticate their services] (http://wiki.squid-cache.org/ConfigExamples/Streams/YouTube).
- Por defecto, la ruta de blackweb es /etc/acl y del script /etc/init.d / By default, blackweb path is /etc/acl and the script /etc/init.d
- Blackweb está diseñada exclusivamente para bloquear dominios. Para los interesados en bloquear banners y otras modalidades publicitarias, visite el foro [Alterserv] (http://www.alterserv.com/foros/index.php?topic=1428.0) / Blackweb is designed exclusively to block domains. For those interested in blocking banners and other advertising forms, visit the [Alterserv] (http://www.alterserv.com/foros/index.php?topic=1428.0) forum.
- Los interesados pueden contribuir, enviándonos enlaces de nuevas BLs, para ser incluidas en este proyecto / Those interested may contribute sending us new BLs links to be included in this project
[Shallalist] (http://www.shallalist.de/Downloads/shallalist.tar.gz)
[UrlBlacklist] (http://urlblacklist.com/?sec=download)
[Capitole - Direction du Système d'Information (DSI)] (http://dsi.ut-capitole.fr/blacklists/download/)
[MESD blacklists] (http://squidguard.mesd.k12.or.us/blacklists.tgz)
[Yoyo Serverlist] (http://pgl.yoyo.org/adservers/serverlist.php?hostformat=nohtml)
[Passwall] (http://www.passwall.com/blacklist.txt)
[Oleksiig Blacklist] (https://raw.githubusercontent.com/oleksiig/Squid-BlackList/master/denied_ext.conf)
[Someonewhocares] (http://someonewhocares.org/hosts/hosts)
[HP Hosts-file] (http://hosts-file.net/download/hosts.txt)
[Winhelp2002] (http://winhelp2002.mvps.org/hosts.txt)
[Cibercrime-Tracker] (http://cybercrime-tracker.net/all.php)
[Joewein Blacklist] (http://www.joewein.de/sw/bl-text.htm)
[Tracking-Addresses] (https://github.com/10se1ucgo/DisableWinTracking/wiki/Tracking-Addresses)
[Adaway] (http://adaway.org/hosts.txt)
[Lehigh Malwaredomains] (http://malwaredomains.lehigh.edu/files/)
[Easylist for adblockplus] (https://easylist-downloads.adblockplus.org/malwaredomains_full.txt)
[Zeus tracker] (https://zeustracker.abuse.ch/blocklist.php?download=squiddomain)
[Malwaredomain Hosts List] (http://www.malwaredomainlist.com/hostslist/hosts.txt)
[Malware-domains] (http://www.malware-domains.com/)
[malc0de] (http://malc0de.com/bl/)
[BambenekConsulting] (http://osint.bambenekconsulting.com/feeds/dga-feed.txt)
[openphish] (https://openphish.com/feed.txt)
#####Ransomware BL
[Ransomware Abuse] (https://ransomwaretracker.abuse.ch/blocklist/)
#####TLDs
[IANA] (https://www.iana.org/domains/root/db)
[Mozilla Public Suffix] (https://publicsuffix.org/list/public_suffix_list.dat)
[Wikipedia Top Level Domains] (https://en.wikipedia.org/wiki/List_of_Internet_top-level_domains)
[whitetlds] (https://github.com/maravento/blackweb/raw/master/whitetlds.txt)
#####Own lists
[Blackurls] (https://github.com/maravento/blackweb/raw/master/blackurls.txt)
[Whiteurls] (https://github.com/maravento/blackweb/raw/master/whiteurls.txt)
#####URLs Validation
[httpstatus] (https://httpstatus.io/)
[GPL-3.0] (https://www.gnu.org/licenses/gpl-3.0.en.html)
This Project is educational purposes. Este proyecto es con fines educativos. Agradecemos a todos aquellos que han contribuido a este proyecto. We thank all those who contributed to this project. Special thanks to [novatoz.com] (http://www.novatoz.com)
© 2016 [Gateproxy] (http://www.gateproxy.com) by [maravento] (http://www.maravento.com)
Este script puede dañar su sistema si se usa incorrectamente. Úselo bajo su propio riesgo. This script can damage your system if used incorrectly. Use it at your own risk. [HowTO Gateproxy] (https://goo.gl/ZT4LTi)